Lucene search
MitreCVE-2005-4732HistoryMar 19, 2006 - 11:00 p.m.
CVE-2005-4732
2006-03-1923:00:00
mitre
web.nvd.nist.gov
21
cve
2005
4732
xss
vulnerabilities
tux racer
tuxbank
index.php
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6
Confidence
High
EPSS
0.003
Percentile
65.8%
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Tux Racer TuxBank 0.7x and 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) description parameters.
Affected configurations
Node
tux_racertuxbankMatch0.8
ORtux_racertuxbankMatch0.72
ORtux_racertuxbankMatch0.73
ORtux_racertuxbankMatch0.74
ORtux_racertuxbankMatch0.75
ORtux_racertuxbankMatch0.76
ORtux_racertuxbankMatch0.77
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tux_racer | tuxbank | 0.8 | cpe:2.3:a:tux_racer:tuxbank:0.8:*:*:*:*:*:*:* |
| tux_racer | tuxbank | 0.72 | cpe:2.3:a:tux_racer:tuxbank:0.72:*:*:*:*:*:*:* |
| tux_racer | tuxbank | 0.73 | cpe:2.3:a:tux_racer:tuxbank:0.73:*:*:*:*:*:*:* |
| tux_racer | tuxbank | 0.74 | cpe:2.3:a:tux_racer:tuxbank:0.74:*:*:*:*:*:*:* |
| tux_racer | tuxbank | 0.75 | cpe:2.3:a:tux_racer:tuxbank:0.75:*:*:*:*:*:*:* |
| tux_racer | tuxbank | 0.76 | cpe:2.3:a:tux_racer:tuxbank:0.76:*:*:*:*:*:*:* |
| tux_racer | tuxbank | 0.77 | cpe:2.3:a:tux_racer:tuxbank:0.77:*:*:*:*:*:*:* |
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6
Confidence
High
EPSS
0.003
Percentile
65.8%
Related for CVE-2005-4732